2 matches found
CVE-2014-7394
The www.alaaliwat.com aka com.alaliwat.marsa application 4.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7394
CVE-2014-7394 affects the Android app www.alaaliwat.com (com.alaliwat.marsa) v4.9: it does not verify X.509 certificates from SSL servers, allowing MITM via crafted certificates and enabling exposure of sensitive data. Remediation details are not provided in the documents; no exploit status is st...